Certificate
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer
File: dbRxTE9hvqBKAs-c9WOuE09HnIU.cer (raw, json)
Hash identifier: ySC5/yC7VtfMBqN8kKCqkV+CvCYhnThdHBauQvFkIMQ=
Subject key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540
Certificate serial: CB4D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Fri 21 Mar 2025 03:12:40 +0000
Certificate not after: Sat 27 Sep 2025 02:40:14 +0000
Subordinate resources: AS: 59083
IP: 43.254.152.0/22
IP: 45.252.8.0 -- 45.252.51.255
IP: 45.252.84.0/22
IP: 45.252.100.0/22
IP: 45.252.132.0 -- 45.252.139.255
IP: 45.252.144.0/22
IP: 59.153.168.0 -- 59.153.195.255
IP: 103.5.192.0/22
IP: 103.6.108.0/22
IP: 103.6.228.0/22
IP: 103.10.0.0/22
IP: 103.24.116.0/22
IP: 103.198.216.0 -- 103.198.247.255
IP: 103.220.248.0 -- 103.221.51.255
IP: 103.221.92.0/22
IP: 150.242.236.0/22
IP: 202.57.216.0/22
IP: 202.58.112.0/22
IP: 202.89.96.0/22
IP: 202.89.108.0/22
IP: 202.136.248.0/22
IP: 202.174.124.0/22
IP: 2403:1b80::/32
IP: 2406:1e80::/32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52045 (0xcb4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9162E3D0000
Validity
Not Before: Mar 21 03:12:40 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:30:31:33:75:03:08:6f:1c:15:28:ca:54:13:
ef:d5:91:d3:db:2e:8e:a5:d3:36:f5:f3:ff:18:5f:
3f:06:19:2e:0d:44:81:ff:48:80:90:f1:b8:cd:0c:
18:39:3b:78:d4:7e:cc:b0:77:81:df:c7:5c:65:e6:
2a:3b:83:3a:c0:c2:98:0d:23:a6:fd:cd:c0:42:b5:
04:72:a8:d5:ce:29:a1:cc:0f:75:04:8e:89:22:73:
ed:c9:8e:03:74:ff:ed:d6:eb:8b:86:b0:dc:7a:13:
af:ba:43:c3:77:c4:ba:4b:9e:b0:f5:d3:a4:f1:15:
2f:01:f8:e5:1c:70:3d:94:e8:27:ee:eb:34:ab:00:
a8:6f:20:67:82:9b:d3:d0:a7:80:bd:e1:3a:05:52:
b7:9b:18:47:23:11:12:74:9c:15:7e:a7:a2:21:d8:
d1:26:e7:07:65:a1:cd:3f:7a:95:73:c9:58:b5:ce:
68:ed:32:49:c8:db:1f:5f:13:96:e9:c1:7f:a6:5e:
be:85:c1:fd:a1:d5:06:78:06:64:fb:ee:1b:0d:57:
10:ba:4f:bc:48:14:f1:7d:b4:fd:2b:ed:a4:f0:1d:
3c:6a:7b:d3:e7:72:61:fc:e5:b3:02:c7:ef:97:5a:
81:79:6e:c4:d8:f8:bc:a7:da:4d:91:49:3d:8f:24:
65:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85
X509v3 Authority Key Identifier:
keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
59083
sbgp-ipAddrBlock: critical
IPv4:
43.254.152.0/22
45.252.8.0-45.252.51.255
45.252.84.0/22
45.252.100.0/22
45.252.132.0-45.252.139.255
45.252.144.0/22
59.153.168.0-59.153.195.255
103.5.192.0/22
103.6.108.0/22
103.6.228.0/22
103.10.0.0/22
103.24.116.0/22
103.198.216.0-103.198.247.255
103.220.248.0-103.221.51.255
103.221.92.0/22
150.242.236.0/22
202.57.216.0/22
202.58.112.0/22
202.89.96.0/22
202.89.108.0/22
202.136.248.0/22
202.174.124.0/22
IPv6:
2403:1b80::/32
2406:1e80::/32
Signature Algorithm: sha256WithRSAEncryption
a9:dd:b0:e3:26:9f:1b:bd:81:bb:d5:a4:85:89:bb:a2:44:b9:
f0:a1:e7:c0:81:ae:b7:c9:07:aa:3d:b7:19:e4:e1:ef:a0:4c:
3f:24:75:17:99:ed:34:61:b0:70:d4:c7:b7:7e:01:f2:90:62:
fb:37:8a:cb:2c:10:52:ff:3c:91:da:58:68:c2:da:2e:02:af:
47:20:31:1e:8d:e1:4d:7b:43:f1:83:47:3a:13:f0:d6:23:8a:
6f:fb:ca:c3:c8:d8:43:ac:65:5b:a1:5f:0a:e8:e2:34:91:75:
bd:3a:11:1b:7b:0f:90:60:ae:9d:2f:c7:8f:3b:63:0b:40:80:
0d:50:2b:6a:c4:b6:52:04:72:a2:61:ff:07:e1:be:4b:46:bd:
05:f4:c2:64:36:4e:52:ca:f1:b4:e4:68:41:3b:09:27:c5:8e:
bf:44:f0:1f:cb:28:d4:43:b0:37:aa:df:df:04:1d:8a:17:e0:
92:8b:f9:7c:f7:f9:50:2b:f0:35:a9:1e:8f:f2:15:a5:b0:cd:
99:6b:3f:3b:5f:60:5a:fe:23:23:f9:34:c1:2c:a6:4f:df:99:
ec:12:ef:83:bd:58:73:1a:90:0f:35:38:c9:3d:a0:07:63:79:
b9:15:87:f1:93:18:b7:d9:64:90:0d:48:33:dc:14:f4:31:95:
14:03:5f:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 03:44:36 2025 by rpki-client